[Secure-testing-commits] r9364 - data/CVE
white at alioth.debian.org
white at alioth.debian.org
Thu Jul 17 13:01:50 UTC 2008
Author: white
Date: 2008-07-17 13:01:49 +0000 (Thu, 17 Jul 2008)
New Revision: 9364
Modified:
data/CVE/list
Log:
New graphicsmagick issue (several DoS); imagemagick still needs to be checked
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2008-07-17 12:52:43 UTC (rev 9363)
+++ data/CVE/list 2008-07-17 13:01:49 UTC (rev 9364)
@@ -108,7 +108,10 @@
CVE-2008-3135 (Soldner Secret Wars 33724 and earlier allows remote attackers to cause ...)
NOT-FOR-US: Soldner Secret Wars
CVE-2008-3134 (Multiple unspecified vulnerabilities in GraphicsMagick before 1.2.4 ...)
- TODO: check
+ - graphicsmagick <unfixed> (low)
+ NOTE: several DoS fixed in 1.2.4 according to upstream
+ NOTE: http://sourceforge.net/project/shownotes.php?release_id=610253
+ TODO: check imagemagick
CVE-2008-3133 (SQL injection vulnerability in admin/index.php in BareNuked CMS 1.1.0, ...)
NOT-FOR-US: BareNuked CMS
CVE-2008-3132 (SQL injection vulnerability in the beamospetition (com_beamospetition) ...)
More information about the Secure-testing-commits
mailing list